Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/GQ5akmxsWkZ6DGZCTdF0KaZlWs0.roa
File: GQ5akmxsWkZ6DGZCTdF0KaZlWs0.roa (raw, json)
Hash identifier: wFZnP/o4hXop0UX+hOnMtKkWJpvFNZmT+3QtHeY2eFQ=
Subject key identifier: 19:0E:5A:92:6C:6C:5A:46:7A:0C:66:42:4D:D1:74:29:A6:65:5A:CD
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 0187B1D6DE9AC7030E71F26AE5030FDA8403
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/GQ5akmxsWkZ6DGZCTdF0KaZlWs0.roa
Signing time: Mon 24 Apr 2023 05:57:41 +0000
ROA not before: Mon 24 Apr 2023 05:57:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 46.249.104.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b1:d6:de:9a:c7:03:0e:71:f2:6a:e5:03:0f:da:84:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Apr 24 05:57:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=190e5a926c6c5a467a0c66424dd17429a6655acd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:13:c3:1f:42:73:9f:9b:a8:ac:25:21:3e:0f:
3b:92:6f:6f:d9:38:c9:76:84:d3:fd:f4:dc:cc:c7:
d5:0d:cd:99:ce:16:0e:00:a1:a3:cf:39:ed:80:fd:
54:7b:66:5a:64:ce:78:0d:53:15:f0:2c:69:c7:8b:
51:6c:63:9f:82:a0:af:fe:c8:f1:4b:68:39:7d:7a:
44:c1:5f:7b:ae:15:87:a0:c8:50:10:ae:f4:de:b1:
b2:0f:1b:9f:4a:6b:8d:35:d0:7a:b5:ef:92:8e:dc:
de:b2:1e:c8:2b:3e:20:59:db:b3:17:c9:29:70:a4:
54:0e:ed:2b:84:b7:fe:85:5e:24:d1:b5:54:4a:05:
24:ba:c6:20:d8:2d:48:a7:0d:41:c3:d5:6c:a7:a9:
08:de:21:10:90:de:96:59:dc:b8:e2:69:21:64:4e:
16:6b:bb:03:04:db:0b:0d:d8:63:34:b0:e2:cc:3e:
52:e6:04:8e:f9:a3:17:0b:bd:fd:ba:34:8d:1f:db:
99:cd:ca:93:fe:d9:94:55:3c:75:65:d8:5d:61:78:
31:53:1f:0c:f1:25:75:cd:72:59:c8:22:d4:00:99:
9a:59:da:e7:6b:03:1b:b7:95:c5:30:bf:25:e3:99:
1d:ba:36:d3:21:81:be:9f:4a:1f:76:31:c8:7a:1e:
8a:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:0E:5A:92:6C:6C:5A:46:7A:0C:66:42:4D:D1:74:29:A6:65:5A:CD
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/GQ5akmxsWkZ6DGZCTdF0KaZlWs0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.249.104.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:a8:a9:0a:b8:80:5d:68:8c:58:c7:ec:98:82:a8:5f:33:cb:
58:61:88:85:23:c8:f5:fc:21:ff:33:08:19:88:ec:ef:c8:64:
d2:4c:9d:82:e1:12:9e:7b:99:02:5a:7f:65:d5:53:b0:3b:50:
13:40:f7:4d:b0:30:07:19:4d:7e:14:0f:d9:87:d3:fe:2d:23:
f7:98:7c:e6:b5:68:0b:77:4d:52:25:3c:45:15:78:ad:43:eb:
3b:b4:2f:43:c6:00:62:69:7c:79:22:a9:58:80:f8:78:ac:3a:
c8:25:cb:d4:3a:4d:3b:4c:93:89:db:9f:8f:7c:b5:bf:29:ce:
84:22:66:7e:03:8a:fd:fb:bb:86:3f:01:6c:26:b0:6b:11:5d:
aa:03:53:85:10:1e:a7:a9:c9:70:d1:53:f8:2f:af:57:64:08:
5c:32:96:01:a7:75:10:08:29:6d:f6:f4:32:e5:07:d6:ad:60:
77:f0:dc:93:41:16:d3:65:25:e7:03:0b:3d:e2:11:85:4a:e1:
a5:9e:e1:e8:94:5b:76:c2:b3:40:3d:dd:6d:09:68:64:bd:5d:
ee:04:2e:2a:d2:d3:77:9e:27:30:e5:af:2d:23:07:dc:78:96:
b3:80:41:1b:c9:5b:95:84:06:78:bf:57:21:37:71:6e:6b:43:
95:2f:a9:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:24 2023 by rpki-client on console-ams.rpki-client.org